Method and system for child authentication

ABSTRACT

Methods and systems for child authentication are described. In one embodiment, a communication enablement request may be received to enable electronic communications between a first child and a second child. A confirmation acceptance code may be electronically generated. The confirmation acceptance code may be associated with the first child and the second child. The confirmation acceptance code may be received from a parental representative of the second child. The electronic communication may be enabled between the first child and the second child based on the receiving of the confirmation acceptance code from the parental representative of the second child. Additional methods and systems are disclosed.

CLAIM OF PRIORITY

This patent application is a continuation of and claims the benefit ofU.S. patent application Ser. No. 12/536,244, filed on Aug. 5, 2009,which is hereby incorporated by reference in its entirety.

TECHNICAL FIELD

This application relates to methods and systems for authentication of anend-user and, more specifically, to methods and systems forauthenticating children to electronically communicate with others.

BACKGROUND

Many parents (or other types of parental representatives) are concernedabout the people with whom their children communicate. When the childrencommunicate over a network using communication devices including mobilephones and personal computers, parents may identify some of the theirchildren's potential or actual communication participants as beingunknown, untrustworthy, or otherwise unacceptable. In response, parentsmay restrict availability of the communication devices to their childrento prevent their children from communicating with such people.

Various systems and methods are known that attempt to limit electroniccommunications for children. For example, one system describes apersonal messaging proxy to manage and configure instant messaging andpresence services. The proxy can be implemented as either a singlesoftware entity or a distributed software entity and contains a set ofparentally-controlled subscription filter rules and content filterrules. When the child participates in instant messaging sessions withother users, the proxy can be configured to forward all messages orselected messages to a monitoring parent's device to periodicallymonitor the instant messaging behavior of the child.

Another system allows a parent to log onto a parental control server.The parent identifies himself or herself to the parental control serverby providing identification information, such as a username and apassword. The parent can then access a setting database that includes anallow/block list including a list of parentally controlled actions. Theallow/block list includes an allow-list of actions allowed by the parentand a block-list of the actions blocked by the parent. Thus, theallow/block list includes customized parental controls.

Still another system requires a parent or guardian of a child to allowthe child access to instant messaging devices. One or moreauthentication credentials are received from the parent or guardian toestablish the age of the parent or guardian. The authentication can comefrom existing third part services, driver's license numbers, or that theparent or guardian is in possession of a valid credit card number.Alternatively, a child can log onto a system directly provided one ofthe age authentication means stated above are present.

Yet another system provides message filtering for allowing a supervisoryuser, such as a parent, to control a flow of messages to other users,such as a child. E-mail messages or instant messages fromalready-approved senders are allowed to pass directly to the child'saccount. Messages from unapproved senders are forwarded to the parent'saccount for either deletion or approval to forward to the child.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a block diagram of a system where children seek to communicateelectronically, according to an exemplary embodiment;

FIG. 2 is a block diagram of an electronic communication providermachine that may be deployed within the system of FIG. 1, according toan exemplary embodiment;

FIG. 3 is a block diagram of an authentication provider machine that maybe deployed within the system of FIG. 1, according to an exemplaryembodiment;

FIG. 4 is a block diagram of a communication enablement subsystem thatmay be deployed within the electronic communication provider machine ofFIG. 2, according to an exemplary embodiment;

FIG. 5 is a block diagram of a communication authorization subsystemthat may be deployed within the authentication provider machine of FIG.3, according to an exemplary embodiment;

FIG. 6 is a block diagram of a flowchart illustrating a method forcommunication enablement, according to an exemplary embodiment;

FIG. 7 is a block diagram of a flowchart illustrating a method forcommunication authorization, according to an exemplary embodiment;

FIG. 8 is a flowchart illustrating an alternative method forcommunication authorization, according to another exemplary embodiment;and

FIG. 9 is a block diagram of a machine in the exemplary form of acomputer system within which a set of instructions for causing themachine to perform any one or more of the methodologies discussed hereinmay be executed.

DETAILED DESCRIPTION

The description that follows includes illustrative structures, methods,materials, and techniques that embody the present disclosure. In thefollowing description, for purposes of explanation, numerous specificdetails are set forth to provide an understanding of various embodimentsof the inventive subject matter. It will be evident, however, to thoseskilled in the art that embodiments of the inventive subject matter maybe practiced without these specific details. Further, well-knownstructures, protocols, Internet-based practices, and techniques have notbeen shown in detail.

As used herein, the term “or” may be construed in an inclusive orexclusive sense. Similarly, the term “exemplary” may be construed merelyto mean an example of something or an exemplar and not necessarily apreferred means of accomplishing a goal. Additionally, although variousexemplary embodiments discussed below focus on various embodimentsrelated to authentication for a child communicating in an electronicenvironment, the embodiments are merely given for clarity in disclosure.Thus, any type of electronic communications in which an authorizedrepresentative approves communication for a dependent, is considered asbeing within a scope of the present disclosure.

Exemplary methods and systems for child authentication are described. Achild can be defined as any minor (i.e., less the age of majority in agiven jurisdiction). Alternatively, the child may be under a certainage, such as 8, 12, or 16. Generally, the child is defined as being ofany age for which a parent might wish to limit electronic communicationswith others. In the following description, for purposes of explanation,numerous specific details are set forth in order to transmit a thoroughunderstanding of exemplary embodiments. It will be evident, however, toone of ordinary skill in the art that embodiments of the invention maybe practiced without these specific details.

A child that seeks to electronically communicate with others in a systemcannot automatically do so. Rather, the child seeks authorization from aparental representative to communicate. An electronically generatedconfirmation code that would enable the child to communicate is providedto the parental representative. The code may be provided by the child tothe parental representative in hard copy, or may be transmittedelectronically to the parental representative. When the confirmationcode is submitted by the parental representative to an electroniccommunication provider machine, an authentication provider machine orboth, one or more types of electronic communication are authorized forthe child to communicate with one or more specified communicationparticipants.

The authorization by the parental representative does not universallyallow the child to communicate with all possible communicationparticipants in the system. Rather, the authorization is specific to oneor more other children or other communication participants of whom theparental representative approves. The authorization may be provided forall different types of electronic communication, or for one or morespecific types of communication.

FIG. 1 illustrates an exemplary system 100 in which children seek tocommunicate electronically with other communication participants over anetwork 104 through use of a first child machine 102 and a second childmachine 106. When communication participants are approved by a parent orother type of parental representative, electronic communications aretransmitted from one child machine to another over the network 104through use of an electronic communication provider machine 110. Theelectronic communication provider machine 110 enables children and othercommunication participants that have been approved to communicate withone another. For example, instant messaging, text messaging, sitemessaging website content access, blog content access, or user statusinformation may be transmitted between a first child machine 102 and asecond child machine 106 once authorized.

The child machines 102, 106 are electronic devices that enable thechildren to electronically communicate with others. Examples of thechild machines 102, 106 include a set-top box (STB), a gaming unit, areceiver card, a mobile phone, a personal digital assistant (PDA), adisplay device, a generic computing system, or the like. Other devicesmay also be used. The child machines 102, 106 may be different devicetypes.

The type of the network 104 over which the child machines 102, 106electronically communicate may include a Global System for MobileCommunications (GSM) network, an Internet Protocol (IP) network, aWireless Application Protocol (WAP) network, a Wi-Fi network, or an IEEE802.11-based standards network, as well as various combinations thereof.Other conventional or later developed wired and wireless networks mayalso be used.

The parental representative machines 108, when included in the system100, are operated by the parental representatives of the children andare used to authorize electronic communications between the children. Inother embodiments, one or more of the parental representatives of afirst child and a second child share a single machine.

The electronic communication provider machine 110 that facilitateselectronic communication for a child when authorized by a parentalrepresentative is a computing system operated by an electroniccommunication provider. The electronic communications are received bythe electronic communication provider machine 110 from one of the childmachines 102, 106 and then provided to the other. While only two childmachines 102, 106 are shown in the system 100, many more child machinesmay also be included.

The authentication of the electronic communication is performed by theelectronic communication provider machine 110 or by an authenticationprovider machine 112. When the authentication is performed by theauthentication provider machine 112, the authentication is then sent tothe electronic communication provider machine 110 to enable theelectronic communication.

FIG. 2 illustrates an exemplary electronic communication providermachine 110 that is deployed in the system 100 (see FIG. 1), or mayotherwise be deployed in another system. The electronic communicationprovider machine 110 includes a communication enablement subsystem 202to enable and process electronic communications for a child.Communications are enabled by the communication enablement subsystem 202when one or more parental representatives of the children provideauthorization for their child to communicate with one or more otherchildren or other communication participants). Otherwise, the child isnot permitted to electronically communicate with unapprovedcommunication participants.

FIG. 3 illustrates an exemplary authentication provider machine 112 thatis deployed in the system 100 (see FIG. 1), or otherwise deployed inanother system. The authentication provider machine 112 includes acommunication authorization subsystem 302 to enable electroniccommunications for a child and provides the authentication to theelectronic communication provider machine 110. In some embodiments, theauthentication provider machine 112 is used to provide theauthentication to the electronic communication provider machine 110 whenthe communication enablement subsystem 202 is not deployed within theelectronic communication provider machine 110. In other embodiments, theauthentication provider machine 112 is used to provide theauthentication to the electronic communication provider machine 110 andother electronic communication providers in other systems.

FIG. 4 illustrates an exemplary communication enablement subsystem 202(see FIG. 2) that may be deployed in the electronic communicationprovider machine 110 of the system 100 (see FIG. 1), or otherwisedeployed in another system (not shown). The communication enablementsubsystem 202 processes a communications enablement request anddetermines whether to enable electronic communications between thechildren. To perform the determination and processing, the communicationenablement subsystem 202 includes a relationship authentication module402, a request receiver module 404, a first child approval module 406, acode generation module 408, a code association module 410, a secondchild approval module 412, a communication enablement module 414, or amessage communication module 416. Other modules may also be included. Invarious embodiments, the modules may be distributed so that some of themodules may be deployed in the electronic communication provider machine110 and some of the modules may be deployed in one or more of the childmachines 102, 106.

In general, a first child seeks to initiate electronic communicationwith a second child, the second child seeks to receive electroniccommunications from the first child, or both. Electronic communicationsinclude instant messaging, text messaging, website content access, blogcontent access, user status information, or the like. The electroniccommunication provider machine 110 will not, however, allow theelectronic communication to occur (or of a certain type to occur)between the children until determining that at least the parentalrepresentative of the second child has approved the electroniccommunication between the children.

In some embodiments, a relationship between the second child and theparental representative of the second child may be authenticated by therelationship authentication module 402. The authentication confirms thatthe parental representative is able to act on behalf of the secondchild. In one particular embodiment, the authentication is in accordancewith Children's Online Privacy Protection Act (COPPA). Theauthentication provides a level of assurance to the authenticator (e.g.,the electronic communication provider machine 110 or the authenticationprovider machine 112) that the parental representative is authorized toact on behalf of the second child. Without such assurance, theauthenticator could receive authorization from a friend of the secondchild, an unauthorized adult, or a different type of person that doesnot have parental authority over the second child.

Upon receipt of a communication enablement request by the requestreceiver module 404, a determination of whether to enable the electroniccommunications between the first child and the second child isinitiated. The request is received from the parental representative ofthe first child, the parental representative of the second child, thefirst child, or the second child.

In some embodiments, the communication enablement request includes aname of the second child. The communication enablement request, in someembodiments, includes identification of one or more types of electroniccommunication to be allowed between the first child and the secondchild. For example, the communication enable request may request thatinstant messaging (IM) communications be enabled with the first child.

In some embodiments, a first child request is transmitted by the firstchild approval module 406 to the parental representative machines 108 ofthe first child. The first child request is sent to the parentalrepresentative of the first child to seek approval for the first childto electronically communicate with the second child. If approved by theparental representative of the first child, the first child approvalmodule 406 receives first child approval from the parentalrepresentative machines 108 of the first child. First child approval maybe received from the parental representative of the first child in otherways.

As part of the determination of whether to enable electroniccommunications between the first child and the second child, aconfirmation acceptance code and, in some embodiments, an additionalconfirmation acceptance code, are electronically generated by the codegeneration module 408. Once generated, the confirmation acceptance codeis then associated with the first child and the second child by the codeassociation module 410. The association enables the parentalrepresentative to specifically authorize electronic communicationbetween the first child and the second child without authorizingcommunication with other possible communication participants.

The confirmation acceptance codes are used by the communicationenablement subsystem 202 to confirm that parental representatives haveapproved that their children may electronically communicate with anotherchild. The confirmation of acceptance codes may include human readablecharacters, non-human readable characters, or both.

To approve the electronic communication, the confirmation acceptancecode is received from the parental representative of the second child bythe second child approval module 412. In one embodiment, theconfirmation acceptance code is transmitted to the second child. Thesecond child then provides (e.g., in hard copy or transmittedelectronically) the confirmation acceptance code to the parentalrepresentative, who then provides the confirmation acceptance code tothe second child approval module 412. In another embodiment, theconfirmation acceptance request is transmitted or otherwise provided tothe parental representative of the second child.

Once the confirmation acceptance code is received from the parentalrepresentative of the first child, the parental representative of thesecond child, or both, the communication enablement module 414 enablesthe electronic communication between the first child and the secondchild. The communication enablement module 414 may, in one embodiment,transmit an electronic communication notification to an additionalelectronic communication provider. The electronic communicationnotification may then be used by the additional electronic communicationprovider to enable electronic communication between the first child andthe second child. In other embodiments, the communication enablementmodule 414 allows the first child to see content posted by the secondchild, the second child to see content posted by the first child, orboth.

After electronic communication has been enabled by the communicationenablement module 414, the message communication module 416 receivesmessages from the first child, verifies that the electroniccommunication has been enabled between the first child and the secondchild, and transmits the messages to the second child. In someembodiments, the message communication module 416 also receives messagesfor the first child from the second child, verifies that the electroniccommunication has been enabled between the first child and the secondchild, and transmits the messages to the first child.

In some embodiments, the communication enablement subsystem 202 preventselectronic communication when not approved by parental representativesof the children. The prevention may reduce the risk of childrencommunicating with persons that are unknown to either or both of theparental representatives.

FIG. 5 illustrates an exemplary communication authorization subsystem302 that is deployed in the authentication provider machine 112 of thesystem 100 (see FIG. 1), or otherwise deployed in another system. Thecommunication authorization subsystem 302 includes a relationshipauthentication module 502, a request receiver module 504, anauthorization request module 506, an authorization receiver module 508,or a notification transmission module 510. Other modules may also beincluded. In various embodiments, the modules may be distributed so thatsome of the modules may be deployed in the authentication providermachine 112 and some of the modules may be deployed in one or more ofthe child machines 102, 106.

In some embodiments, a relationship between the child and the parentalrepresentative of the child is first authenticated by the relationshipauthentication module 502. The relationship may be authenticated by theparent providing confirming information (e.g., name, age, birth date,etc.) about the child, verifying that the child and parentalrepresentative reside at the same address, or may otherwise beauthenticated.

The communications enablement request is received by the requestreceiver module 504 to enable electronic communication between the childand a communication participant. The communication participant may be achild, or a person that is older than a child. In general, a person isdeemed to be a child for whom parental authorization is sought when heor she is below 13 years of age (e.g., between 8 and 12 years old).However, the age may be higher (e.g., age 18) or lower (e.g., age 7) asdesired by an operator of the authentication provider machine 112 (seeFIG. 1), other person, or other entity.

Once the communications enablement request is received by the requestreceiver module 504, the authorization request module 506 requestsauthorization from the parental representative to authorize electroniccommunication between the child and the communication participant.

If the parental representative chooses to authorize the electroniccommunication, authorization is received by the authorization receivermodule 508 from the parental representative of the child toelectronically communicate with the communication participant. In someembodiments, the authorization receiver module 508 receives one or morecommunication permission attributes from the parental representative forthe child. The communication permission attribute defines an attributeof the electronic communication to be enabled. For example, a certainnumber of messages may be allowed (e.g., in total or during a period oftime), a certain type of messages may be allowed, a certain source ofmessages may be allowed, and the like. The attributes may be included inthe authorization, or may be received separately from the authorization.

After the electronic communication has been authorized, the notificationtransmission module 510 transmits an authorization notification forelectronic communication between the child and the communicationparticipant to the electronic communication provider machine 110. Theelectronic communication provider machine 110 may then enable electroniccommunications between the child and the communication participant.

FIG. 6 illustrates a method 600 for communication enablement, accordingto an exemplary embodiment. The method 600 may be performed by the firstchild machine 102 or the electronic communication provider machine 110of the system 100 (see FIG. 1), or may otherwise be performed.

In some embodiments, the relationship between the second child and theparental representative of the second child is authenticated atoperation 602. The parental representative may be a parent, agrandparent, a step-parent, a guardian, or the like. In one embodiment,the authentication is performed in accordance with COPPA, as notedabove. For example, a parental representative registers for access withthe electronic communication provider machine 110 using a credit card. Arelationship between the second child and the parental representative isthen authorized and the second child receives child user identificationfor communication access. In some embodiments, the parentalrepresentative receives parent use identification access for approvingcommunication access for the second child. The parental representativemay have a different email address from the second child, or may have afacsimile number to enable the receipt of messages for the parentalrepresentative.

The communication enablement request is received at operation 604 toenable electronic communications between the first child and the secondchild. The communications enablement request may include a name of thesecond child, identification of one or more types of electroniccommunication to be allowed between the first child and the secondchild, or both. The electronic communications may include, by way ofexample, instant messaging, text messaging, website content access, blogcontent access, user status information, or the like.

In one embodiment, the communications enablement request is receivedfrom the parental representative of the first child. In anotherembodiment, the communications enablement request is received from thefirst child, the second child, or both the first child and the secondchild.

The confirmation acceptance code is electronically generated atoperation 606. In some embodiments, the confirmation acceptance code isa unique identifier. In other embodiments, the confirmation acceptancecode is a substantially unique identifier that is valid for a limitedperiod of time. Other types of confirmation acceptance codes may also beelectronically generated.

In one embodiment, a first child request is provided to the parentalrepresentative of the first child in response to the receiving of thecommunications enablement request, the first child approval is receivedfrom the parental representative of the first child, and the generationof the confirmation acceptance code is in response to receipt of thefirst child approval.

After the confirmation acceptance code is electronically generated, theconfirmation acceptance code is associated with the first child and thesecond child at operation 608.

The confirmation acceptance code is then provided directly or indirectlyto the parental representative of the second child and ultimatelyreceived back from the parental representative of the second child atoperation 610. In one embodiment, the confirmation acceptance code isreceived in response to transmitting a confirmation acceptance requestto the parental representative of the second child. In anotherembodiment, the confirmation acceptance request is first provided to thesecond child. The second child then transmits the confirmationacceptance request to the parental representative of the second child.The confirmation acceptance code is then received from the parentalrepresentative. The confirmation acceptance code may be provided in hardcopy, electronically, audibly, or may otherwise be provided.

The electronic communication between the first child and the secondchild is enabled at operation 612. In one embodiment, the electroniccommunication is enabled by transmitting an electronic communicationnotification from a child machine or parental representative machine tothe electronic communication provider machine 110 (see FIG. 1). Theelectronic communication notification includes identification of thefirst child and the second child. In another embodiment, the electroniccommunication is enabled after an additional confirmation acceptancecode is generated in response to receipt of the confirmation acceptancecode from the parental representative and the additional confirmationacceptance code is then received from the parental representative of thefirst child.

After electronic communication has been enabled, one or more electroniccommunications between the first child and the second child may beprocessed at operation 614. For example, when a message is provided fromthe first child for the second child, verification that the electroniccommunication has been enabled between the first child and the secondchild is made and the message is then provided to the second child.Similarly, when a message is provided from the second child for thefirst child, verification that the electronic communication has beenenabled between the first child and the second child is made and themessage is then provided to the first child.

FIG. 7 illustrates a method 700 for communication authorization,according to an exemplary embodiment. The method 700 may be performed bythe first child machine 102 or the authentication provider machine 112of the system 100 (see FIG. 1), or may otherwise be performed.

A relationship is authenticated between a child and a parentalrepresentative at operation 702. In one embodiment, the authenticationof the relationship between the child and the parental representativemay be in accordance with COPPA, as noted above.

Authorization is received from the parental representative for the childto electronically communicate with a communication participant atoperation 704. In one embodiment, a communication enablement request toenable the electronic communications between the child and thecommunication participant is received and authorization from theparental representative is requested. The authorization is then receivedin response to the request of the authorization.

In one embodiment, one or more communication permission attributes arealso received from the parental representative for the child. Acommunication permission attribute defines an attribute of theelectronic communication to be enabled. Exemplary attributes include anumber of messages, a message type, an attachment type, an electroniccommunication type, or the like.

An authorization notification for electronic communications between thechild and the communication participant is then transmitted to theelectronic communication provider machine 110 (see FIG. 1) at operation706.

With reference to FIG. 8, another exemplary method 800 for communicationauthorization may be performed, at least in part, by the first childmachine 102 or the authentication provider machine 112 of the system 100(see FIG. 1), or may otherwise be performed. In the exemplary method800, a second child attempts to communicate 801 with a first child. Thesecond child may, for example, click on a “click-to-chat button” in anattempt to initiate communications with the first child. The attemptedcommunication is intercepted by the system 100. A determination is made803 whether the first child has already obtained a confirmationacceptance code, as described above. If the first child does not alreadyhave a confirmation acceptance code, the second child is instructed 805to use an alternative registration method, such as one of theconfirmation procedures defined above. Alternatively or in addition, thefirst child may also be instructed on how to obtain a confirmationacceptance code.

If the first child already has a confirmation acceptance code, an actionis initiated 807 by the system (e.g., by the electronic communicationprovider machine 110 or the authentication provider machine 112 of FIG.1), to notify at least one of the parents of the second child thateither an approval (e.g., a simple approval response via e-mail) orother verification is required for the second child to chat with thefirst child. The verification can be, for example, a credit card numberor another type of determinable consideration that approval from atleast one parent has been provided.

A determination is made 809 whether an appropriate approval has beenreceived. If not, the communications is either not allowed or isotherwise terminated 811. However, if the appropriate approval has beenreceived, the second child is allowed to chat 813 with the first child.

FIG. 9 shows a block diagram of a machine in the exemplary form of acomputer system 900 within which a set of instructions may be executedcausing the machine to perform any one or more of the methods,processes, operations, or methodologies discussed herein. The electroniccommunication provider machine 110, the authentication provider machine112, or both may operate on one or more computer systems 900. The childmachines 102, 106 or the parental representative machines 108 of FIG. 1may include the functionality of the one or more computer systems 900.

In an exemplary embodiment, the machine operates as a standalone deviceor may be connected (e.g., networked) to other machines. In a networkeddeployment, the machine may operate in the capacity of a server or aclient machine in server-client network environment, or as a peermachine in a peer-to-peer (or distributed) network environment. Themachine may be a server computer, a client computer, a personal computer(PC), a tablet PC, a set-top box (STB), a Personal Digital Assistant(PDA), a cellular telephone, a web appliance, a network router, switchor bridge, a kiosk, or any machine capable of executing a set ofinstructions (sequential or otherwise) that specify actions to be takenby that machine. Further, while only a single machine is illustrated,the term “machine” shall also be taken to include any collection ofmachines that individually or jointly execute a set (or multiple sets)of instructions to perform any one or more of the methodologiesdiscussed herein.

The exemplary computer system 900 includes a processor 902 (e.g., acentral processing unit (CPU) a graphics processing unit (GPU) or both),a main memory 904 and a static memory 906, which communicate with eachother via a bus 908. The computer system 900 may further include a videodisplay unit 910 (e.g., a liquid crystal display (LCD) or a cathode raytube (CRT)). The computer system 900 also includes an alphanumeric inputdevice 912 (e.g., a keyboard), a cursor control device 914 (e.g., amouse), a drive unit 916, a signal generation device 918 (e.g., aspeaker) and a network interface device 920.

The drive unit 916 includes a machine-readable storage medium 922 onwhich is stored one or more sets of instructions (e.g., software 924)embodying any one or more of the methodologies or functions describedherein. The software 924 may also reside, completely or at leastpartially, within the main memory 904 or within the processor 902 duringexecution thereof by the computer system 900, the main memory 904 andthe processor 902 also constituting machine-readable media.

The software 924 may further be transmitted or received over a network926 via the network interface device 920.

While the machine-readable storage medium 922 is shown in an exemplaryembodiment to be a single medium, the term “machine-readable medium”should be taken to include a single medium or multiple media (e.g., acentralized or distributed database, or associated caches and servers)that store the one or more sets of instructions. The term“machine-readable storage medium shall also be taken to include anymedium that is capable of storing or encoding a set of instructions forexecution by the machine and that cause the machine to perform any oneor more of the methodologies of the present invention. The term“machine-readable storage medium” shall accordingly be taken to include,but not be limited to, solid-state memories, and optical media, andmagnetic media.

Certain systems, apparatus, applications, or processes are describedherein as including a number of modules. A module may be a unit ofdistinct functionality that may be presented in software, hardware, orcombinations thereof. When the functionality of a module is performed inany part through software, the module includes a machine-readablestorage medium. The modules may be regarded as being communicativelycoupled.

The inventive subject matter may be represented in a variety ofdifferent embodiments of which there are many possible permutations. Inan exemplary embodiment, a communication enablement request may bereceived to enable electronic communication between a first child and asecond child. A confirmation acceptance code may be electronicallygenerated. The confirmation acceptance code may be associated with thefirst child and the second child. The confirmation acceptance code maybe received from a parental representative of the second child. Theelectronic communications may be enabled between the first child and thesecond child based on the receiving of the confirmation acceptance codefrom the parental representative of the second child. In an example, arelationship between a child and a parental representative may beauthenticated.

In an exemplary embodiment, a relationship may be authenticated betweena child and a parental representative. Authorization may be receivedfrom the parental representative for the child to electronicallycommunicate with a communication participant. An authorizationnotification for electronic communications between the child and thecommunication participant may be provided to an electronic communicationprovider based on the receiving of the authorization.

Thus, methods and systems for child authentication have been described.Although embodiments of the present invention have been described withreference to specific exemplary embodiments, it will be evident thatvarious modifications and changes may be made to these embodimentswithout departing from the broader spirit and scope of the embodimentsof the invention. Moreover, while the various embodiments stated hereinare described in terms of children and a parent of at least one of thechildren, relationships other than parent-child are envisioned. Forexample, any minor or supervised entity may have electroniccommunications enabled by a representative thus acting as a supervisingentity. The supervised entities can include, for example, disabled orhandicapped individuals, prisoners, or any other person whose access toelectronic communications may be restricted. The representative mightthen include anyone in, for example, a supervisory, fiduciary, orcaretaking role for the supervised entity. Accordingly, thespecification and drawings are to be regarded in an illustrative ratherthan a restrictive sense.

It should be noted that the methods described herein do not have to beexecuted in the order described, or in any particular order. Moreover,various activities described with respect to the methods identifiedherein can be executed in serial or parallel fashion. Additionally, itwill be understood that although “End” operations are shown in theflowcharts, the methods may be performed continuously.

In addition, in the foregoing Detailed Description, it can be seen thatvarious features are grouped together in a single embodiment for thepurpose of streamlining the disclosure. This method of disclosure is notto be interpreted as reflecting an intention that the claimedembodiments require more features than are expressly recited in eachclaim. Rather, as the following claims reflect, inventive subject mattermay lie in less than all features of a single disclosed embodiment. Thusthe following claims are hereby incorporated into the DetailedDescription, with each claim standing on its own as a separateembodiment.

What is claimed is:
 1. A method comprising: receiving a communicationenablement request to enable electronic communication between a firstchild and a second child; electronically generating a confirmationacceptance code associated with the first child and the second child;receiving the confirmation acceptance code from a parentalrepresentative of the second child; and enabling the electroniccommunication between the first child and the second child based on thereceiving of the confirmation acceptance code from the parentalrepresentative of the second child.